I had an SMB network share mounted on a directory under my $HOME (via
FUSE using usmb package), and overnight security(8) tried to check it for
setuid/setgid files. That did not go well. I see that I could have set
the SUIDSKIP environment variable but I didn't think about that in advance
and even if I had, I probably would have assumed that such a mount was not
considered local.
$ mount
[...]
fusefs on /home/astreib/sav type fuse (local)
Is this a problem with the usmb package, that it did not indicate that
this was a network mount, or is that distinction just not possible with
FUSE mounts? I.e. wondering if this is potentially fixable or if I need
to remember to exclude any FUSE mounts via SUIDSKIP?
Running OpenBSD 7.1 amd64 release.
Allan
No comments:
Post a Comment